Featured image of post Flask-Phishing
Tech

Flask-Phishing

Phishing and Phishing Framework Built Over Flask

Flask-Phishing

Introduction

Hey there, fellow tech adventurers! ๐ŸŽ‰ Ready to dive into the sneaky world of phishing? Don’t worry; this is all in good fun and education. Today, weโ€™re going to explore a Python Flask phishing framework. Grab your virtual trench coat and magnifying glass, and letโ€™s go!

Phishing: The Internet’s Dark Alley ๐Ÿ•ต๏ธโ€โ™‚๏ธ

“Phishing is a major problem because there really is no patch for human stupidity.” - Mike Danseglio

What on Earth is Phishing? ๐Ÿค”

Imagine getting an email from your favorite pizza place offering free pizza for a year. You click the link, and boom! Your personal info is stolen. Phishing is like thatโ€”bad guys pretending to be someone you trust to steal your information. Sneaky, huh?

Phishing is a sneaky trick where bad guys pretend to be someone you know online to steal your personal info. Imagine a wolf in sheep’s clothing, but the sheep is your favorite website. The site looks legit but is made to trick you. Always check twice before entering your info!

So, Why Should I Care? ๐Ÿคทโ€โ™€๏ธ

Knowing about phishing is crucial because it shows just how easy it is to fall for these tricks. But hereโ€™s the twist: weโ€™re going to use this knowledge for good. Iโ€™ll show you how to set up a phishing site (purely for educational purposes, of course).

Disclaimer: This tool is for ethical hackers only. If you’re not one of those, please go back to watching cat videos. ๐Ÿ˜ธ Weโ€™re not responsible if you turn into a cyber villain. Use at your own risk, and remember, your mom was right about talking to strangers online. ๐Ÿšซ

What Makes This Tool Special? ๐ŸŽ‰

  • Flask-Powered: Deploy it on the web with ease.
  • No Port Forwarding: Forget the hassle of port forwarding or ngrok.
  • User-Friendly: Simple web interface that even your grandma could use (probably).
  • Accessible: Just need the internet and a web browser.

Installation on Webhosting ๐ŸŒ

  1. Requirements: Internet and a device (laptop recommended, but you can try your luck with a mobile phone).
  2. Deployment Platform: We’ll use PythonAnywhere.

Step-by-Step Guide ๐Ÿš€

  1. Create an Account: Sign up on PythonAnywhere. Yes, you know how to create an account. ๐Ÿ™„

  2. Dashboard Navigation: Head to the dashboard.

  3. Open a New Console: Click on ‘New Console’ and select ‘Bash’.

  4. Clone the Repository: Enter git clone https://github.com/siddhant385/flask-phishing in the console.

  5. Navigate to Directory: Type cd flask-phishing in the console

  6. Install Requirements: Run pip install -r requirements.txt.

  7. Open Web Tab: Go back to the dashboard and click on ‘Web’.

1.png
  1. Add New Web App: Click on ‘Add new web app’ and select ‘Flask’
1.png
  • Next Step
1.png
  • Next Step
1.png
  • Next Step
1.png
  1. Configure Path: Enter the path to your main script, e.g., /home/yourusername/flask-phishing/main.py.
6.png
  1. After you have clicked next a web dashboard will be opened scroll down and then click go to directory of Source code as given in picture below
7.png
  1. Now click on main.py
8.png
  1. Open a new tab and open this url on your new tab and click copy button as shown in the picture Url is : https://github.com/siddhant385/flask-phishing/blob/main/main.py
9.png
  1. After you have copied the code remove all the previous code written in the main.py and paste copied code there and click on save button
10.png
  1. Reload Your Site: Click on ‘Reload’ on the PythonAnywhere dashboard.
11.png
  1. Access Your Site: Go to yourusername.pythonanywhere.com. Use default credentials admin and root to log in, then change them immediately.
12.png
- You will be redirected to a new page click on config tab and change your username and password. Hence you are good to go

Congrats! ๐ŸŽ‰

You have successfully hosted your phishing site!

Aftermath๐ŸŽญ

  • Create a Telegram Bot: Send usernames and passwords directly to your Telegram bot.
  • Send Links: Share links to teach others about phishing.
  • View Trapped Data: Check the DATA tab for captured info.
  • Contribute: Help improve the tool.
  • Star the Repo: Show your support for the author! ๐ŸŒŸ

Prevention Tips ๐Ÿšจ

  • Avoid unexpected links or attachments.
  • Hover over links to check URLs.
  • Enable 2FA for extra security.
  • Keep your system, browser, and antivirus updated

Conclusion

So, there you have it, the lowdown on phishing. It’s like those annoying telemarketers but way sneakier. Be smart, stay alert, and don’t click on everything you see. If it sounds too good to be true, it probably is. When in doubt, ask a friend, parent, or teacher.

Remember, your online life is like your room: keep the doors locked and don’t let just anyone in. ๐Ÿ›ก๏ธ

Write your thoughts in the comments below!

Thank you for visiting my blog! I hope you find my posts interesting and informative. Feel free to connect with me on GitHub, Instagram, or via email. Your feedback and suggestions are always welcome. Stay tuned for more updates!

GitHub Instagram Email Telegram
```
© 2020 - 2024 siddhant385
Built with Hugo
Theme Stack designed by Jimmy